SuSE Update For Libxml2 OpenSUSE-SU-2012:1647-1 (libxml2) Network Vulnerability

Solution

Please Install the Updated Packages.

Insight

A Heap-based buffer underflow in the xmlParseAttValueComplex function in parser.c in libxml2 allowed remote attackers to cause a denial of service or possibly execute arbitrary code via crafted entities in an XML document.

Affected

libxml2 on openSUSE 12.1

References

http://lists.opensuse.org/opensuse-security-announce/2012-12/msg00014.html

Updated on 2015-03-25

Severity

Classification

CVE CVE-2012-5134
CVSS Base Score: 6.8
AV:N/AC:M/Au:N/C:P/I:P/A:P

Related Vulnerabilities

SLES10: Security update for knetworkmanager
SLES10: Security update for Mono
SLES10: Security update for mtr
SLES10: Security update for NetworkManager-gnome
SLES10: Security update for libcdio

SuSE Update for libxml2 openSUSE-SU-2012:1647-1 (libxml2)

Take action and discover your vulnerabilities